Make BN_mod_exp2_mont() and BN_mod_exp_mont_word() internal

The former could be useful but nothing uses it. The latter is a dangerous implementation detail of Montgomery exponentiation that should never have been leaked out of the library. Fix this. ok jsing
author: tb <> 2024-03-02 09:27:31 +0000
committer: tb <> 2024-03-02 09:27:31 +0000
commit: c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c (patch)
tree: d56583ceff6f4723ec51bb6b5743dbe552a6a98d /src
parent: 2309a3f36e13452642a7ad2ed127e96ed774e1c5 (diff)
download: openbsd-c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c.tar.gz
openbsd-c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c.tar.bz2
openbsd-c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c.zip
6 files changed, 10 insertions, 17 deletions
diff --git a/src/lib/libcrypto/Symbols.list b/src/lib/libcrypto/Symbols.list
index c439138eb7..5099a6f1f8 100644
--- a/src/lib/libcrypto/Symbols.list
+++ b/src/lib/libcrypto/Symbols.list
@@ -407,10 +407,8 @@ BN_mask_bits
 BN_mod_add
 BN_mod_add_quick
 BN_mod_exp
-BN_mod_exp2_mont
 BN_mod_exp_mont
 BN_mod_exp_mont_consttime
-BN_mod_exp_mont_word
 BN_mod_inverse
 BN_mod_lshift
 BN_mod_lshift1
diff --git a/src/lib/libcrypto/Symbols.namespace b/src/lib/libcrypto/Symbols.namespace
index 772fb1876b..aff315a305 100644
--- a/src/lib/libcrypto/Symbols.namespace
+++ b/src/lib/libcrypto/Symbols.namespace
@@ -2221,8 +2221,6 @@ _libre_BN_lshift
 _libre_BN_lshift1
 _libre_BN_exp
 _libre_BN_mod_exp_mont_consttime
-_libre_BN_mod_exp_mont_word
-_libre_BN_mod_exp2_mont
 _libre_BN_mask_bits
 _libre_BN_print_fp
 _libre_BN_print
diff --git a/src/lib/libcrypto/bn/bn.h b/src/lib/libcrypto/bn/bn.h
index 39a5180c2c..7921075294 100644
--- a/src/lib/libcrypto/bn/bn.h
+++ b/src/lib/libcrypto/bn/bn.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: bn.h,v 1.76 2024/03/02 09:24:59 tb Exp $ */
+/* $OpenBSD: bn.h,v 1.77 2024/03/02 09:27:31 tb Exp $ */
 /* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -391,11 +391,6 @@ int	BN_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p,
 #endif
 int BN_mod_exp_mont_consttime(BIGNUM *rr, const BIGNUM *a, const BIGNUM *p,
    const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *in_mont);
-int     BN_mod_exp_mont_word(BIGNUM *r, BN_ULONG a, const BIGNUM *p,
-    const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx);
-int     BN_mod_exp2_mont(BIGNUM *r, const BIGNUM *a1, const BIGNUM *p1,
-    const BIGNUM *a2, const BIGNUM *p2, const BIGNUM *m,
-    BN_CTX *ctx, BN_MONT_CTX *m_ctx);
 int     BN_mask_bits(BIGNUM *a, int n);
 int     BN_print_fp(FILE *fp, const BIGNUM *a);
diff --git a/src/lib/libcrypto/bn/bn_exp.c b/src/lib/libcrypto/bn/bn_exp.c
index e4e06db149..04852424f7 100644
--- a/src/lib/libcrypto/bn/bn_exp.c
+++ b/src/lib/libcrypto/bn/bn_exp.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: bn_exp.c,v 1.51 2024/03/02 09:24:59 tb Exp $ */
+/* $OpenBSD: bn_exp.c,v 1.52 2024/03/02 09:27:31 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -961,7 +961,6 @@ err:
        BN_CTX_end(ctx);
        return (ret);
 }
-LCRYPTO_ALIAS(BN_mod_exp_mont_word);
 int
 BN_mod_exp_recp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, const BIGNUM *m,
@@ -1353,4 +1352,3 @@ err:
        BN_CTX_end(ctx);
        return (ret);
 }
-LCRYPTO_ALIAS(BN_mod_exp2_mont);
diff --git a/src/lib/libcrypto/bn/bn_local.h b/src/lib/libcrypto/bn/bn_local.h
index e5c4cddc92..5acb546d07 100644
--- a/src/lib/libcrypto/bn/bn_local.h
+++ b/src/lib/libcrypto/bn/bn_local.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: bn_local.h,v 1.39 2024/03/02 09:24:59 tb Exp $ */
+/* $OpenBSD: bn_local.h,v 1.40 2024/03/02 09:27:31 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -308,6 +308,12 @@ int BN_div_ct(BIGNUM *q, BIGNUM *r, const BIGNUM *n, const BIGNUM *d,
 int BN_mod_ct(BIGNUM *r, const BIGNUM *a, const BIGNUM *m, BN_CTX *ctx);
 int BN_mod_nonct(BIGNUM *r, const BIGNUM *a, const BIGNUM *m, BN_CTX *ctx);
+int BN_mod_exp_mont_word(BIGNUM *r, BN_ULONG a, const BIGNUM *p,
+    const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx);
+int BN_mod_exp2_mont(BIGNUM *r, const BIGNUM *a1, const BIGNUM *p1,
+    const BIGNUM *a2, const BIGNUM *p2, const BIGNUM *m,
+    BN_CTX *ctx, BN_MONT_CTX *m_ctx);
 int BN_mod_exp_simple(BIGNUM *r, const BIGNUM *a, const BIGNUM *p,
    const BIGNUM *m, BN_CTX *ctx);
diff --git a/src/lib/libcrypto/hidden/openssl/bn.h b/src/lib/libcrypto/hidden/openssl/bn.h
index 1aa5b10d9d..f6f00cf766 100644
--- a/src/lib/libcrypto/hidden/openssl/bn.h
+++ b/src/lib/libcrypto/hidden/openssl/bn.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: bn.h,v 1.5 2024/03/02 09:24:59 tb Exp $ */
+/* $OpenBSD: bn.h,v 1.6 2024/03/02 09:27:31 tb Exp $ */
 /*
 * Copyright (c) 2023 Bob Beck <beck@openbsd.org>
 *
@@ -97,8 +97,6 @@ LCRYPTO_USED(BN_lshift);
 LCRYPTO_USED(BN_lshift1);
 LCRYPTO_USED(BN_exp);
 LCRYPTO_USED(BN_mod_exp_mont_consttime);
-LCRYPTO_USED(BN_mod_exp_mont_word);
-LCRYPTO_USED(BN_mod_exp2_mont);
 LCRYPTO_USED(BN_mask_bits);
 LCRYPTO_USED(BN_print_fp);
 LCRYPTO_USED(BN_print);
author	tb <>	2024-03-02 09:27:31 +0000
committer	tb <>	2024-03-02 09:27:31 +0000
commit	c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c (patch)
tree	d56583ceff6f4723ec51bb6b5743dbe552a6a98d /src
parent	2309a3f36e13452642a7ad2ed127e96ed774e1c5 (diff)
download	openbsd-c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c.tar.gz openbsd-c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c.tar.bz2 openbsd-c9bc42b7edc08f714c31d8ec1a974cc5b287ef4c.zip